Turbot Guardrails Hub 
Hub
  • Mods
  • Policy Packs
  • Docs
  • Home
ModsPolicy PacksDocsHome
Policy Packs
Enforce Trusted Access for Policies on AWS S3 Buckets
  • AWS > S3 > Bucket > Policy > Trusted Access
  • AWS > S3 > Bucket > Policy > Trusted Access > Accounts
  • AWS > S3 > Bucket > Policy > Trusted Access > CloudFront Origin Access Identities
  • AWS > S3 > Bucket > Policy > Trusted Access > Identity Providers
  • AWS > S3 > Bucket > Policy > Trusted Access > Organization Path Restrictions
  • AWS > S3 > Bucket > Policy > Trusted Access > Organization Restrictions
  • AWS > S3 > Bucket > Policy > Trusted Access > Services

Policy Settings

The Enforce Trusted Access for Policies on AWS S3 Buckets policy pack has 7 policy settings:

PolicySettingNote
AWS > S3 > Bucket > Policy > Trusted AccessCheck: Trusted Access
AWS > S3 > Bucket > Policy > Trusted Access > Accounts- "123456789012" - "123456789013"
AWS > S3 > Bucket > Policy > Trusted Access > CloudFront Origin Access Identities- "arn:aws:iam::cloudfront:user/CloudFront Origin Access Identity EH1HDMB1FH2TC" - "EH1HDMB1FH2TC"
AWS > S3 > Bucket > Policy > Trusted Access > Identity Providers- "www.acme.com" - "www.example.com"
AWS > S3 > Bucket > Policy > Trusted Access > Organization Path Restrictions- "o-c3a5x8sd31/r-wxnb/ou-wxnb-dasdtpaq/ou-*" - "o-c3a5x8sd11/r-wxnb/ou-wxnb-dfadtpaq/*"
AWS > S3 > Bucket > Policy > Trusted Access > Organization Restrictions- "o-c3a5x8sd31" - "o-c3a5x8sd11"
AWS > S3 > Bucket > Policy > Trusted Access > Services- "sns.amazonaws.com" - "ec2.amazonaws.com"
Guardrails
Guardrails Hub
  • Hub
  • Docs
  • Blog
  • Changelog
Products
  • GuardrailsGuardrails
  • PipesPipes
  • SteampipeSteampipe
  • PowerpipePowerpipe
  • FlowpipeFlowpipe
  • TailpipeTailpipe
Turbot
  • Home
  • About us
  • We're hiring!
  • Contact us
Community

Our community of practitioners love to discuss cloud governance & security.

Slack logoJoin us on Slack →

System StatusLegalSecurity
Terms of UseSecurityPrivacy